🛡️ Free practice test question from: Pass the hash attack (Security+)

"Pass-the-Hash" (PtH) is a specific type of cyberattack primarily associated with operating systems, particularly those within Windows environments. (PtH attacks are not typically direct attacks against websites)
This attack involves an attacker obtaining and using the hashed version of a user's password to authenticate and gain unauthorized access to systems without needing to know the actual plaintext password. This technique leverages the way certain operating systems handle password hashing and authentication.

PtH attacks are most commonly associated with Windows environments, especially those using NTLM (NT LAN Manager) authentication protocols.

B) Direct Physical Access: PtH attacks do not necessarily require physical access. They can be executed remotely if the attacker has access to the hashed credentials.

D) Exclusively Targets Older Systems: While PtH attacks are more common in Windows environments, they are not limited to older operating systems like Windows NT 4.0.

C) Reliance on Social Engineering: PtH attacks focus on leveraging hash values rather than the method of obtaining them. While social engineering can be a vector to obtain hashes, it is not a defining characteristic of PtH attacks.